SecurityFocus

Re: php codes injection in phpMyAdmin version 2.5.7. 2004-06-30
Marc Delisle (DelislMa CollegeSherbrooke qc ca)

In-Reply-To: <20040629025752.976.qmail (at) www.securityfocus (dot) com [email concealed]>

The Internet, 2004-06-30

Greetings,

The phpMyAdmin development team announces

the availability of phpMyAdmin 2.5.7, patch level 1.

This version fixes the vulnerability dated 2004-06-29,

released on BUGTRAQ.

From our Document

[ more ] [ reply ]

(IE/SCOB) Switching Software Because of Bugs: Some Facts About Software and Security bugs 2004-06-30
Drew Copley (dcopley eEye com)

There has been a great deal of talk about people
switching to Mozilla because of this recent Internet
Explorer issue.

This is a serious misunderstanding about security
that comes about because of people's ignorance and
because they "believe the hype" but do not look at
the details.

An example:
ht

[ more ] [ reply ]

Unprevileged user can change quota on Domino 2004-06-30
Andreas Klein (Andreas C Klein physik uni-wuerzburg de)

Hello,

this problem has been reported to IBM Lotus customer support on
January 19,2004.

Affected versions:
Domino 6.5.0/6.5.1 (other versionns not tested by me)

Abstract:
Every user can change his quota on an imap-enabled Domino server to every
value he likes.

Detailed description:
If your mai

[ more ] [ reply ]

RE: Microsoft technologies. By default, non-HIPAA compliant? 2004-06-30
Boring, Andrew (Andrew Boring millerzell com)

Anything But Microsoft [mailto:abm (at) anythingbutmicrosoft (dot) org [email concealed]] wrote:

> The US health care system is the only industry where best network and
> security practices are a federally mandated requirement.

Note the word "practices" and NOT the word "products".

Aren't financial institutions (banks, credi

[ more ] [ reply ]

FW: [security bulletin] SSRT3552 HP-UX running ARPA transport local Denial of Service (DoS) 2004-06-29
Boren, Rich (SSRT) (rich boren hp com)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

HP SECURITY BULLETIN

HPSBUX01054 REVISION: 0

SSRT3552 rev.0 - HP-UX running ARPA transport,
local Denial of Service (DoS)

-----------------------------------------------------------------
NOTICE:
There are no restrictions f

[ more ] [ reply ]

Cisco Security Advisory: Cisco Collaboration Server Vulnerability 2004-06-30
Cisco Systems Product Security Incident Response Team (psirt cisco com)

RE: Microsoft technologies. By default, non-HIPAA compliant? 2004-06-30
Cameron, Thomas (Thomas Cameron bankofamerica com)

> -----Original Message-----
> From: Anything But Microsoft [mailto:abm (at) anythingbutmicrosoft (dot) org [email concealed]]
> Sent: Tuesday, June 29, 2004 9:43 PM
> To: <@securityfocus.com BUGTRAQ
> Cc: secure (at) microsoft (dot) com [email concealed]
> Subject: Microsoft technologies. By default, non-HIPAA compliant?
>
>
> The US health care system

[ more ] [ reply ]

FW: [security bulletin] SSRT4758 rev. 0 HP-UX ObAM WebAdmin unauthorized access 2004-06-29
Boren, Rich (SSRT) (rich boren hp com)

DSL router Prestige 650HW-31 2004-06-30
Sami Gascón (samigascon terra es)

Hi, have not much time so here is the thing... There's a bug in the DSL
router Prestige 650HW-31, you just post a long string as password and the
router resets it self so is very easy to make a DNS to this router if people
doesnt have the aproppiate filters on port 80 (I didnt tried on Telnet).
This

[ more ] [ reply ]

SUPER SPOOF DELUXE Re: [Full-Disclosure] Microsoft and Security 2004-06-29
http-equiv (at) excite (dot) com [email concealed] (1 malware com)

>Here's a quick and dirty demo injecting malware.com into
>windowsupdate.microsoft.com :)

>http://www.malware.com/targutted.html

Thomas Kessler was kind enough to inform that this is not new,
but in fact on old "issue" with Internet Explorer which by all
accounts was supposed to be "patched"

[ more ] [ reply ]

RE: Microsoft technologies. By default, non-HIPAA compliant? 2004-06-30
Jeremy Epstein (jeremy epstein webmethods com)

I'm no Microsoft apologist, but let's not go off the deep end.

HIPAA has very few direct requirements. A lot of what needs to be done
depends on the environment. For example, if I have a closed environment
with no Internet connections (yes, this happens in some places) and
sufficient controls to

[ more ] [ reply ]

Microsoft technologies. By default, non-HIPAA compliant? 2004-06-30
Anything But Microsoft (abm anythingbutmicrosoft org)

The US health care system is the only industry where best network and
security practices are a federally mandated requirement.

In light of last weeks MS vulnerabilities with no known patches or
usable work around (text only mode in a browser, or security settings
that disable most usage, is not a

[ more ] [ reply ]

Re: Java applet crashing with native assertion 2004-06-30
Cheese Whiz (ezbnnc hotmail com)

In-Reply-To: <Pine.A41.4.58.0406282056370.170138 (at) zivunix.uni-muenster (dot) de [email concealed]>

I can click cancel on assertion error window and my broswer does not crash.

FireFox 0.8

Windows XP Pro SP1

Java Version 1.4.2_04 (build 1.4.2_04-b05)

>this is a Java One special:

>

>Three months ago I informed Sun

[ more ] [ reply ]

rsbac 1.2.3 jail security problems 2004-06-30
Bencsath Boldizsar (boldi mail2003 etl hu)

Amon Ott has released a security bugfix for RSBAC 1.2.3. The problem was
discovered regarding to the RSBAC JAIL implementation. Please read the
attached original release note if interested. The bugfix is available for
download at

http://www.rsbac.org/download/bugfixes/

For beginners, RSBAC is:

[ more ] [ reply ]

Remote DoS vulnerability in Linux kernel 2.6.x 2004-06-30
Adam Osuchowski (adwol polsl gliwice pl)

1. Overview
-----------

There is a remotely exploitable bug in all Linux kernel 2.6 series due to
using incorrect variable type. Vulnerability is connected to netfilter
subsystem and may cause DoS. It's disclosed only when using iptables with
rules matching TCP options (i.e. --tcp-option). There i

[ more ] [ reply ]

MDKSA-2004:065 - Updated apache packages fix buffer overflow vulnerability in mod_proxy 2004-06-29
Mandrake Linux Security Team (security linux-mandrake com)

MDKSA-2004:064 - Updated apache2 packages fix DoS vulnerability 2004-06-29
Mandrake Linux Security Team (security linux-mandrake com)

[ GLSA 200406-22 ] Pavuk: Remote buffer overflow 2004-06-30
Kurt Lieber (klieber gentoo org)

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory GLSA 200406-22
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org/
- - - - - -

[ more ] [ reply ]

MDKSA-2004:063 - Updated libpng packages fix potential remote compromise 2004-06-29
Mandrake Linux Security Team (security linux-mandrake com)

linux kernel Sbus PROM driver multiple integer overflows 2004-06-29
infamous41md hotpop com

Sbus PROM driver multiple integer overflows
-------------------------------------------

Description:

This character device driver allows user programs to access the PROM
device tree. It is compatible with the SunOS /dev/openprom driver and the
NetBSD /dev/openprom driver. The SunOS eep

[ more ] [ reply ]

BHO Trojan follow-up information 2004-06-29
Hubbard, Dan (dhubbard websense com)

All;

Some more interesting information on BHO trojan:

We captured a sample file from the infected site:

* http://www.refestltd.com/

"Decompiled" the CHM file

*hh -decompile c:\dir iexpl.chm (NA shows this as keylog.lotus)

Decompiled file: (idx.htm)
<html>
<body>
<img width=1 height=1
src='mhtm

[ more ] [ reply ]

php codes injection in phpMyAdmin version 2.5.7. 2004-06-29
Nasir Simbolon (nasir kecapi com)

Software : phpMyAdmin

Version : 2.5.7

Vulnerability : php codes injection

Problem-Type : remote user

phpMyAdmin is web-based mysql administration written

in PHP.

There is a vulnerability in phpMyAdmin version 2.5.7.

This vulnerability would allow remote use

[ more ] [ reply ]

Re: DLINK 614+ - SOHO routers, system DOS 2004-06-29
Gregory Duchemin (c3rb3r sympatico ca)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi,
the flaws reported to DLINK on May 24th and posted to bugtraq have
been tested on a DI614+ revision A (arm7/2 antennas) firmware 2.30,
i have omitted to mention it so please update ...

However:
Rev A's latest firmware available is still 2.30 and t

[ more ] [ reply ]

TSSA-2004-012 - apache 2004-06-29
tinysofa Security Team (security tinysofa org)

========================================================================
===
_
|_ . _ _ _ (_ _
|_ | | ) \/ _) (_) | (_|
/

[ more ] [ reply ]

[ GLSA 200406-21 ] mit-krb5: Multiple buffer overflows in krb5_aname_to_localname 2004-06-29
Kurt Lieber (klieber gentoo org)

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory GLSA 200406-21
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org/
- - - - - -

[ more ] [ reply ]

SUPER SPOOF DELUXE Re: [Full-Disclosure] Microsoft and Security 2004-06-29
http-equiv (at) excite (dot) com [email concealed] (1 malware com)

> On the subject of IE bugs, I am running SP2 RC2,
IE6.0.2900.2149 today I
> opened a window
> http://www.asus.com/products/server/srv-mb/ncch-dl/overview.htm
> In another IE window I had www.ingrammicro.com/uk open
>
> Whe I click on the picture of the motherboard in the first
page to enlarg

[ more ] [ reply ]